mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-07 03:02:30 +00:00
858 B
858 B
CVE-2016-9635
Description
Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by providing a 'skip count' that goes beyond initialized buffer.
POC
Reference
- https://bugzilla.gnome.org/show_bug.cgi?id=774834
- https://scarybeastsecurity.blogspot.com/2016/11/0day-exploit-advancing-exploitation.html
Github
No PoCs found on GitHub currently.